DNSSec mess with SHA1
Scott Morizot
tmorizot at gmail.com
Fri Dec 15 13:28:29 UTC 2023
On Fri, Dec 15, 2023 at 6:58 AM Petr Špaček <pspacek at isc.org> wrote:
> Hello.
>
> It smells like a packaging issue to me. Stock BIND (not an obsolete Red
> Hat-Frankenstein version) should detect this condition and threat
> domains as insecure.
>
And I think that answers the one question I had. I was curious what BIND
would do at build time on a system like that and it sounds like it would
pick it up during build. I didn't have a system available with the
described issue on which I could do a full build and see what happened.
Thanks,
Scott
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20231215/873c5ab5/attachment.htm>
More information about the bind-users
mailing list